PCI

N2 Net Security, Inc. is proud to be certified as a PCI Qualified Security Assessor (QSA).

pci_ssc_qsa-sm

Download our PCI Services Brochure

PCIServicesBrochure-thumb

Does your company store, transmit, or process credit cards or debit cards from Visa, MasterCard, American Express, JBC, or Discover?  If so, you have a PCI compliance requirement and we would love to help you get peace of mind and get back to doing what you do, business.

With decades of experience, our team members draw from experience gained at Bridgestone, Home Depot, and other Fortune 250 Companies to save you time and money.  N2 Net Security, Inc. has been certified by the PCI Security Standards Council (SSC) to perform PCI Services as a Qualified Security Assessor (QSA).  As shown in the following diagram, we have developed a broad range of PCI services including our Gap Assessment, Remediation, Formal QSA Assessment, and Maintenance services.

PCI-services

When it comes to protecting your reputation and customer data, we understand that the utmost care must be given.  At the same time, we understand that in this economy, companies face daily challenges and often have to choose between function and security.  We believe you can do both.  We do not believe in chasing technologies or standards, we believe in getting to the root of the problem and fixing it right, the first time.

We will start by performing a gap assessment.  The inial process normally takes a couple of days and includes time for us to train your personnel on PCI compliance, get to know about your environment, and perform the actual gap assessment, which is derived from the PCI Data Security Standard (DSS). Next, we will schedule for and perform a PCI Focused Penetration Test.  Then, we will deliver a quality report with findings and recommendations for remediation and compliance.

Next, if required, we can assist you with the remediation.  We will assist you with both your policy and technical controls.  We will follow the PCI SSC recommended milestone program to PCI compliance.  We will provide the necessary guidance and experience to help you achieve PCI compliance.  If necessary, we will assist you in completing a Self Assessment Questionnaire (SAQ).

We provide formal QSA assessments to include the Report of Compliance (ROC), as required by the PCI SSC.

PCI requirements change from time to time and we can help you remain compliant and meet your regular obligations.  It is important to realize the cost of being non-compliant.

Cost of being non-compliant:


PCI Classification

Card

Provider

Cost for Non Compliance

Prior to Breach

Cost for Non-Compliance after a Breach (same for all)

Level 1 Merchants

(6 Million Cards/year)

Visa

Up to $25k/mo
  • Up to $500k fine from each of the 5 card brands (Up to $2.5M)
  • Losing the ability to process cards in the future
  • Mandated on-site audits with QSA
  • Cost for re-issuing cards
  • Unlimited liability for all fraudulent charges (easily $500k per card brand)
  • Possible class-action law suits
  • Possible Federal investigation
  • Additional Potential Fines:
    • Egregious violation ($500k)
    • Failure to report ($100k)
    • Storing full track data
    • $50k initial fine
    • $100k monthly

MasterCard
  • $25k 1st quarter
  • $50k 2nd quarter
  • $100k 3rd quarter
  • $200k 4th quarter

Level 2 Merchants

(1-6 Million Cards/year)

Visa

Up to $5k/mo

MasterCard
  • $25k 1st quarter
  • $50k 2nd quarter
  • $100k 3rd quarter
  • $200k 4th quarter

Level 3 Merchants

(20k-1 Million Cards/year)

Visa

Up to $5k/mo

MasterCard
  • $10k 1st quarter
  • $20k 2nd quarter
  • $40k 3rd quarter
  • $80k 4th quarter

Level 4 Merchants

(less than 20k/year)

Visa

None at this time

MasterCard

None at this time


We can help you avoid these cost!  We look forward to earning your business.

Contact us now to schedule your PCI Gap Assessment.

 

Login